SonicOS 7.1 Objects

Adding a New Zone in Policy Mode

To add a new zone

  1. Navigate to OBJECT | Match Objects > Zones.
  2. Click the Add Zone icon.

  3. Type a Name for the new zone.
  4. Select the Security Type.

    Trusted To create a zone with the highest level of trust, such as internal LAN segments.
    Public To create a zone with a lower level of trust requirements, such as a DMZ interface.
    SSLVPN

    To create a zone for interfaces on which Content Filtering, Client AV enforcement, and Client CF services are enabled.

    Enable SSLVPN Access and Create Group VPN options are not available for SSLVPN Security Type.

  5. Set the toggle keys for security services as required.

    Toggle key Security Service
    Enable SSLVPN Access

    To enable SSL VPN secure remote access on the zone.

    Create Group VPN

    To create a SonicWall Group VPN Policy for this zone automatically.

    You can view and customize the Group VPN Policy on NETWORK | SSLVPN > Server Settings page.

      • Enable SSLVPN Access option is not available if SSLVPN is selected as Security Type.
      • The Create Group VPN option is available until SSLVPN is selected as Security Type. If the Security Type is changed to any other type, the Create Group VPN option becomes available.

    Disabling Create Group VPN removes any corresponding Group VPN policy.

    Disabling Group VPN for WAN or WLAN VPN policies, deletes all VPN policies. Re-enabling the Create Group VPN option automatically creates a new, enabled VPN policy. Disabling VPN policies globally does not delete auto-rules. If you do not want VPN policies at all, globally disable VPN, and delete all policies that correlate with VPN.

    WAN or WLAN Group VPN policies are disabled by the default when the firewall is booted with the factory default.

    For more information about connectivity options, refer to the SonicOS Connectivity.

    Enable SSL Control

    To enable SSL Control on the zone. All new SSL connections initiated from the zone are now subject to inspection.

    Make sure that the SSL Control is enabled globally on NETWORK | Firewall > SSL Control page.

  6. Click Save.

    The new zone is now added to the Security Appliance.

Was This Article Helpful?

Help us to improve our support portal

Techdocs Article Helpful form

  • Hidden
  • Hidden

Techdocs Article NOT Helpful form

  • Still can't find what you're looking for? Try our knowledge base or ask our community for more help.
  • Hidden
  • Hidden